Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 620
Alerts This Week
Warning Icon 1 620

openSUSE: 2019:1224-1 Low: blktrace Buffer Overflow Fix

opensuse
Calendar Grey April 17, 2019
Dist Opensuse Esm H88
The latest blktrace update for openSUSE addresses CVE-2018-10689, minimizing buffer overflow vulnerabilities. It’s advisable to install securely for enhanced system safety
An update that fixes one vulnerability is now available.

Description

This update for blktrace fixes the following issues:

- CVE-2018-10689: Prevent buffer overflow in the dev_map_read function

because the device and devno arrays were too small (bsc#1091942)

This update was imported from the SUSE:SLE-15:Update update project.

Patch

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods

like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Leap 15.0:

zypper in -t patch openSUSE-2019-1224=1

Package List

- openSUSE Leap 15.0 (x86_64):

blktrace-1.1.0+git.20170126-lp150.2.3.1

blktrace-debuginfo-1.1.0+git.20170126-lp150.2.3.1

blktrace-debugsource-1.1.0+git.20170126-lp150.2.3.1

References

https://www.suse.com/security/cve/CVE-2018-10689.html

https://bugzilla.suse.com/1091942

--

Severity
low
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2019:1224-1
Rating: low
Affected Products: openSUSE Leap 15.0

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.